IcoFX 2.6 - '.ico' Buffer Overflow SEH + DEP Bypass using JOP

Exploit Title: IcoFX 2.6 - '.ico' Buffer Overflow SEH + DEP Bypass using JOP Date: 2020-05-20 Exploit Author: Austin Babcock Vendor Homepage: https://icofx.ro/ Software Link: https://drive.google.com/file/d/1SONzNStAW3pAPU5IUvsYS3z0jYymEZn/view?usp=sharing Version: 2.6.0.0 Tested on: Windows 7...

IcoFX 2.6 - (.ico) Buffer Overflow SEH + DEP Bypass using JOP Exploit

Exploit Title: IcoFX 2.6 - '.ico' Buffer Overflow SEH + DEP Bypass using JOP Exploit Author: Austin Babcock Vendor Homepage: https://icofx.ro/ Software Link: https://drive.google.com/file/d/1SONzNStAW3pAPU5IUvsYS3z0jYymEZn/view?usp=sharing Version: 2.6.0.0 Tested on: Windows 7 Ultimate x64 CVE:...

IcoFX 2.5.0.0 (.ico) - Buffer Overflow Vulnerability

No description provided by source. Core Security - Corelabs Advisory http://corelabs.coresecurity.com/ IcoFX Buffer Overflow Vulnerability PoC: http://www.exploit-db.com/sploits/30208.zip 1. Advisory Information Title: IcoFX Buffer Overflow Vulnerability Advisory ID: CORE-2013-1107 Advisory URL:...

IcoFX - Stack Buffer Overflow

No description provided by source. This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 Msf::Exploit::Remote Rank = NormalRanking include Msf::Exploit::FILEFORMAT def initializeinfo =...

IcoFX Stack Buffer Overflow (CVE-2013-4988)

A stack buffer overflow has been reported in IcoFX. The vulnerability is due to an error while parsing specially crafted .ico files. A remote attacker can exploit this issue by enticing a user to open a malicious .ico file...

CORE-2013-1107 - IcoFX Buffer Overflow Vulnerability

Core Security - Corelabs Advisory http://corelabs.coresecurity.com/ IcoFX Buffer Overflow Vulnerability 1. Advisory Information Title: IcoFX Buffer Overflow Vulnerability Advisory ID: CORE-2013-1107 Advisory URL: http://www.coresecurity.com/advisories/icofx-buffer-overflow-vulnerability Date...

IcoFX buffer overflow

Buffer overflow on .ICO files parsing...

IcoFX ICO处理缓冲区溢出漏洞

BUGTRAQ ID：64221 CVE ID：CVE-2013-4988 IcoFX是一款免费的图标设计编辑工具。 IcoFX在读取ICONDIRENTRY结构时存在一个边界错误，允许攻击者利用漏洞构建恶意ICO文件，如ICONDIR结构中包含超大"idCount"值，诱使用户解析，可触发基于栈的缓冲区溢出。远程攻击者可以利用漏洞可使应用程序崩溃或可执行任意代码。 0 IcoFX IcoFX 2.5 目前没有详细解决方案提供： http://www.icofx.ro/ This module requires Metasploit:...

IcoFX - Local Stack Buffer Overflow (Metasploit)

This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'IcoFX Stack Buffer Overflow', 'Description' = %q This module exploits a stack-based buffer overflow vulnerability in version 2.1 of...

IcoFX 2.1 (.ico) - Stack Buffer Overflow

This Metasploit module exploits a stack-based buffer overflow vulnerability in version 2.1 of IcoFX. The vulnerability exists while parsing .ICO files, where an specially crafted ICONDIR header, providing an arbitrary long number of images into the file, can be used to trigger the overflow when...

IcoFX Stack Buffer Overflow

This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'IcoFX Stack Buffer Overflow', 'Description' = %q This module exploits a stack-based buffer overflow vulnerability in version 2.1 of...

IcoFX Stack Buffer Overflow

This module exploits a stack-based buffer overflow vulnerability in version 2.1 of IcoFX. The vulnerability exists while parsing .ICO files, where a specially crafted ICONDIR header providing an arbitrary long number of images in the file can be used to trigger the overflow when reading the...

CVE-2013-4988

Stack-based buffer overflow in IcoFX 2.5 and earlier allows remote attackers to execute arbitrary code via a long idCount value in an ICONDIR structure in an ICO file. NOTE: some of these details are obtained from third party information...

Stack overflow

Stack-based buffer overflow in IcoFX 2.5 and earlier allows remote attackers to execute arbitrary code via a long idCount value in an ICONDIR structure in an ICO file. NOTE: some of these details are obtained from third party information...

CVE-2013-4988

CVE-2013-4988 : A stack-based buffer overflow in IcoFX 2.5 and earlier occurs while parsing ICO files, via a long idCount in an ICONDIR header. Public exploit details show this can enable remote code execution, with variants such as IcoFX 2.6 demonstrating SEH/DEP bypass using a JOP chain (noted ...

CVE-2013-4988

Stack-based buffer overflow in IcoFX 2.5 and earlier allows remote attackers to execute arbitrary code via a long idCount value in an ICONDIR structure in an ICO file. NOTE: some of these details are obtained from third party information...

IcoFX 2.5.0.0 (.ico) - Buffer Overflow Vulnerability

IcoFX is prone to a client side security vulnerability when processing .ICO files. This vulnerability could be exploited by a remote attacker to execute arbitrary code on the target machine, by enticing the user of IcoFX to open a specially crafted icon file. Version 2.5.0.0 for Windows is...

IcoFX 2.5.0.0 - '.ico' Buffer Overflow (PoC)

Core Security - Corelabs Advisory http://corelabs.coresecurity.com/ IcoFX Buffer Overflow Vulnerability PoC: https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/30208.zip 1. Advisory Information Title: IcoFX Buffer Overflow Vulnerability Advisory ID: CORE-2013-1107...

IcoFX 2.5.0.0 - .ico Buffer Overflow (PoC)

IcoFX 2.5.0.0 - .ico Buffer Overflow PoC Core Security - Corelabs Advisory http://corelabs.coresecurity.com/ IcoFX Buffer Overflow Vulnerability PoC: https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/30208.zip 1. Advisory Information Title: IcoFX Buffer Overflow...

IcoFX Buffer Overflow Vulnerability

Advisory ID Internal CORE-2013-1107 1. Advisory Information Title: IcoFX Buffer Overflow Vulnerability Advisory ID: CORE-2013-1107 Date published: 2013-12-10 Date of last update: 2013-12-10 Vendors contacted: IcoFX Software Release mode: User release 2. Vulnerability Information Class: Buffer...